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..common Interne; connection but also intercommunicate. 

All of these trends suggest the allure of a consolidated nexus in 
consumers' residences for both professional and persona! content 
that multiple LAN clients could simultaneously access, ideally, this 
centralized storage would Implement a RAID (redundant array of independent 
disks), which would protect the MAS... 

.. mode it's in at the time. And the need to provide the MAS with both the 
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VVLAN vireies.i-LAN ■ S3 L ::-m: :c ar d encryption 
-key information before it car; make the VV'i- ccouact on is a challenging 
setup requirement ior a headless- : y mm* das am i-hpaiiv. ycr. "■aed m deece 



counierp rts 2 --mm customers should use the NAS 
as a Single-point-of c fo a of their precious- -often 

^replaceable -digital data: music libraries photographs^ 
videos i am. a! e;.mdm ami rhe iike .m.ess you ^se a RAID 1, RAID 5, 

... regarding how the NAS market may evolve in the future. Todays NAS 
suppliers include traditional hard-disk-drive companies, such as Seagate 
and Western Digital: traditional neiwofk-fsquiprnem vendors, such 
as Cisco's Llnksys division. D-Link, and Netgear; and start-ups, such as 

.. your users will likely want to be able to carve up the available 

capacity into more than one shared-storage resource, with per-share access 

sights, such as disabled, read-only, or read/write, that 

customers will define on a cer-user and -group basis. They'll access the 

..AFP (Appie-fiiing protocol). NFS (network-file system;, and SMB/CF-S 
(server-message Clock/common Internet-file system). They'll also want both 
configuration and subsequent access to work in a way that 
doesn't force them to comprehend and grapple with the underlying 
complexity. 

LAN-client backup, another commonly requested... 

.. consider the laundry hsl of other NAS capabilities that your potential 

customers might value and. therefore, pay extra for. These features include 

on-the-fly encryption during storage and subsequent 

decryption during read-back of Information archived on the NAS, along with 

USB (Universal Serial Bus) ports for printer serving, augmented storage 

capacity, and networked access to scanners and other USB peripherals. Your 

oim;omeis might aiso warn automatic network discovery through protocols 

such as UPnP (universal plug and play) and Apple's Bonjour-that 

is, Zeroconf. Media streaming is also on the list. Protocols 

such as UPnP AV (audio/video) and DLNA (Digital Living Network 

Alliance} enable this feature both across the LAN and over a WAN 

(-.Vide- area-network} connection. Firewall-surmounting technologies, such as 

UPnP and.. 

.. safeguards that ISPs {Internet-service providers) now put in place. 

authentication < mo oV : P o-ev;;: mm 
(secure-sockets -layer) capabilities. 

Keep in mind, too. that you must support no-brainer updates to the 
NAS BIOS... 



additional utilities fha; you: cusmmers may want to install after the 

purchase. For example, many enthusiasts have developed freely downloadable 

add-ons ior... 

.. Semiconductor's R3210 CPU. implementing the i486 
microprocessor-Instruction set However, the NAS was so 
performance- strapped that It couldn't support either SMTP-server 
authentication' v o3_ c o- jlj :o - -s 

could not use its USB port to implement a punt server. Similarly, the 
company initially shipped... 
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...a Casetronlc Travla CI 37 enclosure (Figure A ). f customized the C137 to 
hold dual 3.5- m hard-disk drives from both Seagate and Western 
Digital for mirrored storage Because many of the NAS systems on 
the earlier list use modified L.:n..;> diSKibotk-ns. : boused this 

...the foundation ol your next NAS design, I d encourage you 10 focus some 
Meefjse. to return your rcscT: -q -h;> crga-^atlon so that it 

One other minor frustration Involved the EPfA SN BIOS (basic Input 



...horsepower In some configurations (Reference B ). Also, if you're doing 
PVR (personal-video recorder) applications, such as Video encoding before 
archiving or transcoding before streaming, you might want to 
consider using the three-way-superscalar, out-of-order architecture that 
Via includes in its Nano CPU and implements In its... 

.■■seagate.corn 

www.maxtor.com 
Sony 

www.sony.com 
Toshiba 

www.toshiba.com 
Trltton Technologies 
www.trittontechnoloqles.com 
Via Technologies 
www.via.com.tw 
Western Digital 

Ximeta 

www.ximeta.com 

You can reach Senior Technical Editor Brian D^cerf at 
1 -91 5-760-01 59. bdipert@edn.com , and www... 
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This paper proposes a decentralized, distributed and secure communication 

0 1 <U J i ! * 1 1 UlA ! l| t 1 , 

associated digital rights. The lack of structured 

rrv tadata de c -„ - i uitimsdia contents d 

on In* fho w L a n i > In i ; t 

...and iviPEG-21 multimedia metadata. Moreover, security aspects limit the 

development of genera! purpose real applications using a peer-to peer 

routing infrastructure for sharing digital items with an 

associated license. Accordingly, we propose a framework made up 

of a secure Distributed Hash Table layer based on Kaderniia, including an 

identity based scheme and a secure... 
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Povzetek: Predstavijen je sistem za uelnkcvito Indeksiranje in 
doseganje digltalnih vsebin. 

1 Introduction 

Nowadays the growing of digital items exchanged on the web 
increases the need of their accurate description. We can define metadata as 
the des ; r < Bible to share mult media 

items, if is very difficult or impossible to search them without 
appropriate description provided by content metadata. Usuaiiy 
people making use of web-sharing systems do not provide detailed metadata 
information, which in most cases is only limited to the ...unstructured 
information. Using metadata it is possible to structure the information and 
tin, i n 1 i r i 1 'o a 

confer*! and, on the other, to search and retrieve 
digital it- -mo ! r «-itn m ■ ' ■■ o v \ ^ r ' ■ 
nmn nmiol:^ ivu ' , i e i 

Moreover, in order to reach a common understanding of metadata, it is 
important to adopt standards. The adoption of MPEG-7 (1 ) for describing 
metadata related to the digital items and of MPEG- 21 (2) for 
describing metadata related to a governed content (i.e., with an 
associated license), as proposed in this paper, is a common 
approach used by an increasing number of scientific communities. The use of 
the standards mentioned above can improve the expressiveness of the query 
language for the multimedia items and can make governable the 
content distribution. 

The enormous amour:: of medui available on the web promotes the 
adoption of completely decentralized Infrastructures, such as peer-to-peer 
(P2P) content sharing systems, that minimize the impact of a 
single point of failure fostering scalability, reliability and efficiency. 
Unfortunately, such approaches Introduce a large spectrum of security 
flaws that limit the adoption in a real scenario, in fact, if it is true 
that digits! contents are growing up very fastly especially in 
sucfi distributed environments, it must be noticed that such systems usuaiiy 
offer poor functionalities for indexing and... 

...affects these systems: the lack of a central entity offering a complete 
representation of complex information (i.e., the set of the metadata 
characterizing the digital items) results In a poorly expressive 
query language (e.g., parsing of the query string and pattern matching). 
Moreover -xi t ' c gc e not providing any kind of 
content i j > im c a c - c c 1 e/ iGrb^i 

into account any digital rights associated to the 
exchanged resources. 

We propose a decentralized, distributed and secure communication 
\rV tsfn on *o ' ■> ir • ^ r - II as. . 

...contents. Our approach, based on Distributed Hash Tables, allows complex 
queues to the system by means of complex multimedia metadata indexing. 
Moreover, the sharing of digital items on the basis of the 
associated license (either free or not), enables ...of our work 
a <_ u-un ir^„ o > 

t c it 5 < > i < i 1 - r \ t i m 

related to multimedia contents 

-a policy to manage digital rights expressed 
by MPEG-21 Rights Expression Language (REL) (3) profiles that 
enables the governed sharing of digital items along with the 
protection of the Intellectual property, a secure structured overlay 
network that assu oviding tn 

effective defense against.. .presented. 

For metadata representation we adopted the MPEG-7 (1) and MPEG-21 (2 
standards, which are outlined in Section 2.3. Concerning the governed 
content management, we adopted the solutions developed by the 
Digits! Media Project (DMP) ( 4). Accordingly. Section 2.3.1 
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' . le - thitecture o1 Chillout (5 fie reference software 
implementation of the ISO/! EC 23000-5 (Media Streaming 
Application Format) standard. 

2.1 Distributed Hash Tables 

Distributed Hash Tables (DHTs) (6, 7. 8) are a class of distributed 
ims that provides the same. ..the target identifier are initiated, 
intercepting thus most of the lookup requests and answering with fake 
< onion o » ] ■ f < ! ; : content 

Si " ' on' o ^ ! > il- e \o> 

I i I it i 1 1 nodeid), 

it is possible for any few machines, centralizing unsafely many keys' 
responsibilities and content replicas. The Sybil entitles are 
i ~ 1 1, /} i r <■ <■ rate (e.g. 

Eclipse, DD out need j esoi 

...other . ..Hod t j i I o 

An index poisoning based attack (10) consists in inserting corrupted 
a it f to a - or ! - r , » < ;r jpted 

content might be something not related to the key for which it 
was ?tc o! eve a fake into on, ilk t - r - < 

source. An attacker can make a bogus content highly visible by 
flooding fictitious records under 'strategic' Indexes (e.g., among nodes 
r o >on ible < h< i < y ) 1 j I i . 
content, in file-sharing applications, the most similar attack 
is the content pollution, that inserts on the DMT fake meia-data 
(I.e., meta-tiata that should be correct but that point to corrupted 
resources), 

A distributed an index poisoning attack. In file-sharing systems, the 
attacker can Insert meta-data related to a very popular content, 

he victim 

will be overflowed by connection requests until the 'polluted' 
content will be kept in index nodes' storage. 

Concluding this overview on the attacks, it Is worth notice that some 
studies (12) show that in the. ..completing the puzzles of ail nodes in the 
chain are provided a cryptographic proof of the examined identity. 

A tool which oouiri effectively combat the content 
pollution and the index poisoning attacks is the use o? credentials, bound 
to the content, provided by the owner of the content 
during the Insertion phase: if the content is bound to the 
identity of an owner, when a fake resource is found. It is possible to 
trace back to content creator. If the application implements a 
reputation system, it could be possible to penalize or even to ban a 
malicious node. 

Credent ifs i i s DDoS: as 

it would be too costly to oblige rephca nodes to verity the authenticity 
of each inserted content, it Is necessary to adopt a reputation 
system so that | > r wtv n w t t ; t x >gnized as 

soon as possible and banned from, ..groups nd match them with appropriate 
cryptographic techniques and protocols is presented in (26). 

2.3 Multimedia Metadata Representation 

■VIPEG-7 (1). formally named Multimedia Content Description 
ntf L oi pr i . L t s i ' i 

c i it t t i i i digital 

items, without considering how and where this information is used. In 
P itn t i < anient may Include ;t ) 

f ' l t I > f I i I C i C 

content (director, title short feature movie). (2) Information 
related to the usage of the content (copyright pointers, usage 
history bn tdcast s> i e< ii- i '3j r X - fc '0/ f <• X ' s - 

on I i jpat nporai compo ents or about low level 

features (colors, textures, sound timbres, melody description) and many 
others. 

MPEG-? standard has been included in several metadata language, such 
as ODRL (Open Digital Rights Language) (3) and has 
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been coupled with other important TV ontologies (e.g., TV Anytime RMP! 
(27)). Concerning digital rights, MPEG-7 provides a 

standard XML schema and the metadata to define conditions for accessing the 
confers! (including links to a registry containing intellectual 
property rights data and price) and additional information about 
the content {copyright iointer iistor> i ) ic 

1PEG-7 Query it rs h h> lai Con - tree Draft, during 
the VI < i i '/ t ^ ' V i t in ao ^ i : - r > , 

all the players in the delivery and consumption value chain. This framework 
will provide an open market to content creators, producers, 
distributors and service providers. The goal of MPEG-21 is the definition 
of a standard technology needed to support users in order to exchange, 
access, consume, tm.de and otherwise manipulate digssai items in 
an efficient, transparent and interoperable way. in particular, part 5 of 
MPEG-21 defines a Rights E< >r< s< _angu< (REL) to be used in 
the description of customized rights applied to any 
digital item, since It is seen as a machine-readable language 
that can declare rights and conditions defined in the 
Rights Data Dictionary (also standardized by MPEG-21). 
Rights metadata are expressed by means of MPEG-21 REL which 
describes the Hcersse associated to a specific resource, along 
with several available rights (play, copy, modify, 

print, etc.). According to the schema shown in Figure 1 (29) we can imagine 
the license as made up o o - 

an undefined number of grants (multiplicity 0 or more), and a principal 
(multiplicity 0 or 1 ). The issuer is the owner oi the rights 
associated to a given content (eventually coincident with the 
creator or distributor of the resource) and can assign a given right (e.g., 
the authorization to copy or modify the content) to the 
principal. For example, in the wide commonly used CreativeCommons (30) 
licenses the principal is not speciiied since this kind of 
license is intended for everyone. 
2.3.1 Chillout 

Chi ; in is in reference software of the Digital 
Media Project (DMP) (4). DMP is a no profit organization that has recently 
approved aversion 3.0 of its specification, called interoperable DRM 
Platform (IDP-3.0). Chillout is also the reference Implementation of 
ISO/I EC 23000-5 Media Streaming Application Format (31), 
addressing the distribution of governed content over 
streaming channels. The most important technologies adopted by 
Chillout are: (a) a data structure capable of hosting different data types 
accompany d; a i a 

content lentifieatio 

content prelection, (d) the Rights Expression 
Language, (s) a file format ior storing digital items and 
resources and (i) a technology to transmit digita! items in 
streaming mode. 

Two file formats for managing digital contents are used as 
depicted in Figure 2: DCI (DMP Content Information) and DCF 
(the DMP Content File) (32). The DCI is a standard XML-based 
format which is intended mainly to express the license metadata 
and is compliant with two MPEG-21 REL profiles: the Open Access 
Content (GAG) profile (33), for expressing equivalent 

r r>u. s And Capture (DAC) profile 

{34), mapping the TV Anytime RMPI (35) licenses, used in the broadcasting 
com it I i i tiie MPE 

c M s o • for the content. The DCF file has been conceived 
as a container oi the DCI arid the ...system that is able to share governed 
contents on P2P i ' ^ *ne oo ;;>:>: ilv fo 

publish, index, search retrieve and consume a digital item and 
governed refers to the fact that each digital 
content disH it 3 >n ;i f syei< n is i em cording U ts 
associated license. It is worthwhile pointing out that a DRM 
system c< Id u he [ op< si i cluticn as thi underlying software to manage 
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(create, index, retrieve) governed contents, demanding to an other 

!i top of t 1 i mage or not the associated 
digital rights. This solution allows also the 

integration of the proposed prototype with proprietary DRM solutions, where 
the content representation Is based on MPEG standards. Moreover, 
despite the common feeling about P2P networks in relationship with abuse or 
violation of digital rights and Intellectual 
property rights in general, mainly due to the sharing of 
c< > i <}h r i - iSt I content, the software solution 

proposed ir r pa| proofs that is i ■ tile to have 
content government on these popular networks and is also 
-ecu re. 
(FIGURE 2 OMITTED) 

We make use of the MPEG-7 standard for expressing the metadata 
related to the digital content itself, describing the 
user metadata (e.g., title or author) as well as the metadata describing 
the content a mm M ; /) 

HedgoHiitogram). W< < > l -g fVF EG 2 J <:andard for expressing 
licenses because MPEQ-21 REL provides several profiles for specific 
< ivii >n~ fin i I , o r " k ? r- ur 

guarantee high Interoperability with other rights languages and 
therefore it is able to express most of the possible licenses. As described 
in Section 2.3.1 Chillout can manage governed content using 
MPEG-7 and MPEG-21 representation, which is contained into a DC! structure, 
specified by ISO/'! EC 23000-5. Hence the proposed solution is.. .approach is 

Eliad>- 3j < ' t i 

"User Interaction Layer, where the several user software components 
communicate with the application layer providing and consuming 
dsysfvii contents. 

--Application Layer, which is in charge for extracting the 
information to be indexed and for communicating with the DMT layer in order 
to index components depicted In Figure 3, a user device can play 
different roles: 

-Content Creator, which is the component responsible for 
the creation of governed content (in DCF format), making use of 
user resources and the associated licenses (expressed in the DCI file). 

-Content 

providing governed contents that can be created by the same user as well as 
by others, 

-Player (End... 

th om[ ant that can consume tf resources according to the associated 
In mr>> W in i Y t f i t u 

recognizes which sights are guaranteed to the current user 
■ < >>ov p!ay ' o ,> 'a > i a a i 

le Application I I i nen 

Retrieving, indexing and Exchanging, as shown in Figure 3.. .layer and id) 
inserting the relative mappings in the DMT. 

A user can search for resource related metadata (e.g., the title in 
MPEG-7). license related metadata (e.g.. the issuer In MPEG-2f 
REL) or a combination of the two. A detailed description of the Retrieving 
md Indexing hens;, on< 

>>■ ian ji ig • < t n 

oth <changii a real digita! content, for 

example as byte array. This communication Is asynchronous and completely 
separated. The user can make use of the metadata exchanging component 
looking for several. ..there is a discrepancy between metadata 
representation and the way in which information are stored in a DHT-based 
infrastructure, in the first case, the content is described by a 

1 a a ' I'rnalism. e g . MPEG-7 and MPEG-21 ...proposed an 
iterative indexing and retrieving scheme (37) that is similar to the 
hierarchical indexing scheme described in (38). 

Let's consider a genetic audiovisual content R that Is 
associated with a set of metadata. Such metadata are extracted during the 
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v ie MPEG-7 anci/or MPEG-21 and digital 
rights. Therefore, it is evident that to index the complete 
metadata knowledge could represent a very expensive computational and 

>st 1 3 1 ghten the load .it. ..it calculates (id.sub.mi) and, by 
means of a lookupfiid.sub.mi)), it retrieves the identifier of the 
corresponding resource. At last, a subsequent lookup Is able to 
get (directly or indirectly) the requested resource. 

A key aspect of our approach is the ability to index and retrieve 
audiovisual items with associated digital rights. We 

can divide contents between governed and ungoverned. Ungovemed items do 
r >f i indexe are just MPEG-7 

elements. Governed Items have a license and we have defined the 
following structure to be indexed: for each right described in the 
license we Index three MPEG-21 REL tags: issuer, right, 
prim ><) > ^ i i ' il i ii t i j ' ' o t i y 
< art- w< t> imo i in< A c owi ig 3 s nd a single principal 

for each right and for every grant expressed In the license we 
index the bundle of issuer right and principal linking the associated 
content. Hence, the DHT contains the indexes of the general 
purpose metadata and In addition, for governed resources, the bundle of 
grants linking the digital item. 
(FIGURE 3 OMITTED) 

Figure 4: Example of a lviPEG-7 description for a MPS audio file. 

<?xmi versiorW'I.O" encod:ng="UTF-8"?> 
<Mpeg7...ID3genreCS:vl:80-xName> 

Acoustic Rock</Namex/Genre> 
</Class;fication> 
<ACreation In formation:* 
</Description> 
</Mpeg7> 

Let's consider again the resource R with an associated MPEG-21 REL 
license as shown In Figure 5. We extract the following metadata 
elements: 

(m.sub.issuer) = (issuer.. .play). The principal is not 
defined since the item Is governed by a Creative Commons License 
. Afterwards, a key is calculated for the metadata, i.e., (id.sub.issuer), 
(id. sub igf 1 nd (id.* | map) respectively, and the mappings <(id 
...m.sub.princtp)). (kJ.sub.R)> 

In this scenario, a user could search for "all the digital 
items issued by someone", or couid submit composite queries like " ... 
above. 

5 Secure DHT Layer based on Kademlia 

As previously underlined, one of the main concern -hat limits a broad 
adoption of a DHT-based content sharing platform is the 
security aspect. In this Section we wiii describe a communication protocol 
and an identity management scheme that pi a secure iayer,,.ne centre! 
is performed by replica nodes over the information stored In the DHT thus 
allowing the index poisoning and derivative attacks. There is no 
authentication protocol between nodes. Nevertheless, k-buckets 
provide resistance to certain DoS and index pollution attacks; in fact, one 
c t mol i - 1 e by flooding. ..mess t 

H (o) : hash code of the object o 

(Authki sub. A; : node A's authenticated id 

tAuth.sub.A8) : authentication 

by A for B 

ts, TTL : timestamp, time to live 

astrings 

Figure 5: Example of a !ViPEG-21 REL iicersse 
for the audio file 

described in Figure 4. 

<?xml version-"!. 0" encoding="UTF-8"?> 
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dicensev- s="ufr ipse 3:01 -REL-R-NS,, 

xmlns:mx= : 'um:m[ ■ 2003:01 -REL-MX-NS <rr r a v 0 <= umtmpeg: 

mpeg21 :2006:01 -REL-M3X-NS"> 
<grani> 

<mx:play/> 

<digltalResource licens6Part!d="jj-2005-onon-track-01"> 
<r:onSecure!nd!rect URI^"urn:newspaper: 
news:2Q05 ...copyrightStr!ng> Written by Jack Johnson, 
'GO!? ' 
</m3x:copyrlghtNotice> 
</grant> 
<issuer> 
<keyHolder> 
<:nfo> 

<dsig:KeyName>Jack Johnson's 
key</dsig:KeyName> 
</info> 
</keyHolder> 
</issuer> 
</license> 

The proposal enhance';; the jom procedure, the node interaction 
protocol and the content storage procedure defined by Kademiia. 
in a (in iini / 1 

Service for a certified Nodeld and for bootstrap information outcoming 
messages; especially, the node must produce special credentials related to 
every content to be inserted in the DHT. 
5.1.1 Initialization 

Node A must obtain its own certified id, in order to interact with 
other peers. ..that establishes the expiralion date 0: the signed 
(Nodeld.sub.A). The CS Keeps track of the association between Userld and 
Authid, so that all subsequent NodeidReq received by the same 
users receive in response the same Authid passed earlier, unless it Is 
expired or close to expiration. This is a.. .the first join using 
information obtained from the bootstraplist each node should get In a 
different way a list of nodes to be contacted for subsequent 
join operations. For example a node car; maintain its own list of trusted 
bootstrap nodes, or the same CS could periodically insert a signed 
boo str ml )> c 

somehow marked differently i g.. differs 1 

request from the response. 

Authentication tokens are structured as follows: 
(Auth.sub.AB) = Sjgr;((Nodeld.sub.B... against man in the middle 

a tacks msftv. i < 1 ^e 

hosts are synchronized to a common clock. 
5.1 A Content storage system 

RPCs follow Kademlia's definitions, except for the store RPC Let A 
be a node, owner of a content Obi, If A wants to store Obj in 
the DHT :t locates via lookup the k 00000 closes: to the content 
key and then sends to them a store message structured as follows (suppose 
that B Is a generic replica node): 

A (right arrow) 3 : (AuthldTTL, (K.sup.-.sub.A)) 

, led bir) t s v " ^ . - v - ■ < 

inserted and to the hash code of the content, so that is 
subsequently possible 10 prove that the ownei had inserted the 
content Obi at the key k. Cred includes also a timestamp and a 
time to live to specify the content submission time and its 
persistence period. During the periodic content spreading 
procedure, all replica nodes send store messages keeping the original 
credentials associated with each content. A node periorming a 
lookup tor contents related to a key (chi) receives all the objects marked 
with (chi) from replica nodes responsible tor that key; before passing the 
content to the application, the node must verify the credentials 

iie and the object hash and must discard the object if the check 

fails. 
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if the application ascertain that the content is somehow 
polluted (e.g., the key that marks the content is not related 
with it), it can benefit irom the information included in the credentials 
to penalize the owns: of the content. This could be simply 
accomplished by instructing the underlying node to blacklist the cheater 
user in .. network, as well as integrated in the application, can help to 
exclude more rapidly the polluter from the whole network. Nevertheless, the 
propagation of polluted content is largely limited due to 
credentials' verification 

5.1 . ...CS, the attacker cannot generate its Id "ad hoc". Routing 
utacks (including s t is unfe 

an attacker to hide a content marked with a given key k by way 
oi a node insertion attack, because the malicious node cannot register a 
substantial number of nodes with., .a set of references to invalid nodes 
(I.e., devoid of Authids). the victim nods Is nor able to contact any of 
them because the authentication protocol fails in signature 
verjfic itu n ! ; tnc a t ?. - t , * v i Jul \ t sd< 

its attack results Ineffective because the eoiiuders' ids are.. .this 
scheme. Nevertheless, each node corresponds to a different user account and 
the nodi initial/at! i ition di I it 

if the user authentication procedure requires a human 
interaction » id I 

nodes in an automated way, actually lowering the risk...CS when the 
submitted Identity - 

Storage attacks Every storage entry in the DHT Is bound with Its 
Cred, created by the content owner with an unforgeabie 
signature. A node performing a lookup operation returns to the application 
only those results that are bound with some Cred, and the consumed object 

• c cc , i the content. The underlying node can 
be then instructed to exclude from network traffic those nodes whose 
* c - 'so oad. The use of Cred can contrast attacks like index 
poisoning, content pollution or even DDoS attacks based on 
redirection by punishing the malicious users who attempt these attacks. 

Man in the middle attack An attacker who.. .is limited to a node 
interaction session: moreover authenticators are addressee-specific, 
because th i Ie h i i - ) i i i > I 

two-way authentication scheme grants protection against common 
it t- rli j ii'tn j e1 a< V < > t 
attacks. 

6 Prototype 

In this Section we describe the main. ..3. In the implemented 
prototype the main application interacts with the user components described 
in Section 3. As already mentioned above, we assume that the 
content indexed and retrieved in the P2P network is always 
governed, requiting the adoption of an appropriate format which is able to 
provide a full description of the content. We used the MPEG-7 
metadata for the multimedia content representation and MPEG-21 
metadata to express the digital rights. Moreover we 
also c i p i brained by applyln 

encryption tools for DRM. According to Chillout reference 
implementation (5), we make use of the DC! ...leave the system and to 
insert/retrieve the DCF flies. As already described, it makes use of a DCI 
and DCf wr pr. t - e digital content files 

and for extracting the metadata to be indexed. 

The insertion of a content proceeds as follows: the 
Content Creator component is responsible for creating the DC! 
and the DCF. The user can choose one or more resources to be published in 
the P2P network in a single DCF file and can associate to each resource a 
different license, wi cl t- c i j fc , i " zed for 
different purposes. It Is worthwhile noticing that some resources in the 
DCF file could be also encrypted to ensure that even if they are retrieved 
from the P2P network the consumption of the content is possible 
only to the principal specified in the license. Once the DCF (or 
simply the DCI) is created, it can be shared on the structured peer-to-peer 
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network. Concerning the COTtersf retrieval, the lookup operation 

on the DMT could be done by simple keywords or structured bur-die of MPEG-21 

REL tags, resulting, at iow level in the index of the content 

whose DCF (DCI) Is fulfilling the request. The Application module contacts 

then the publishing sources (peers) asking for mens information about the 

content. Every user can check the iicerise conditions 

associated to a given content before downloading it. The 

is of a DC MetadataServlee on a 
separate channel (socket), with a specific protocol which is able to means 
of the CollectorResults, which generates a separate thread looking for the 

isynchron u ' c i> c < en i ci see f 

content from the result list and the Application component will 
contact the specific owner source (the <IP addressthrough the 

il< l tan pi tt i <. t component ;<;ee Figure 3) which in We have 

described a decentralized, distributed and secure communication 
irtmsfr' 'i,n c ni n i - - fn- i cji°"h " 
associated digita! tights. We have discussed a feasible approach 
to share digital items according to the associated 
Sicense, making use of a P2P routing infrastructure based on 
DMT. Complex queries on standard MPEG-7 and MPEG-21 multimedia metadata are 
supported. 

< cm i mini he in tl MPEG t tlum. MPQ 5 ais estlgat 

novel approaches for searching digits! contents on peer-to-peer 
infrastructure, as range arid by feature queues that could be introduced 
into a future prototype. Moreover, we plan to evaluate within the framework 
of the PRIN "PROFILES" project (7). 

Received: August 3 ■ . 2008 

References 

(1) MPEG-7--ISO/IEC 1 5938-- information Technology Multimedia 
Content Description Interfaces. 

http://www.chiarialione.org/mpeq/ si a "P< g 7 ntm Last 

visited: 15 Nov 2008. 

(2) MPEG-21 -ISO/I EC 21000-lnlormation Technology Multimedia 
Framework, http://www.ch um j ' eg 2' htm. 
Last visited: 15 Nov 2008. 

(3) MPEG-21 Rights Expression Language-lSO/lEC 
21 000-5— Inlorrnation Technology Multimedia Framework. 
http://www.chi3rn_.hi ic \ I i > htm. Last 
visited: 15 Nov 2008. 

(4) Digitai Media ...Tous and Jaime Deigado. L7, An 
MPF.G-7 Query Framework I " , c ceangs of the 3rd 
International Conference on Automated Production of Cross Media 
Content for Multi-Channel Distribution, Barcelona, Spain, pages 
256-263. IEEE Computer Society, 2007. 

29) Wa i raricesco G », Fiiippo Chiarig ">ne and 

c)l n of' 1 ' i 1 n > i i j i ^ ! i | 

Digita! Rights. In AXMEDIS '07: Proceedings of the 
3rd Internet p 1 , c n \ , t i f < , > r V o a 

Content for Multi-Channel Distribution. Barcelona, Spain, pages 
147-154. IEEE Computer Society, 2007. 

(30) CreativeCommons. httorv creafivec ommons.org. Last visited: 15 
Nov 2008. 

(31) MPEG-A-- ISO/EC 23000-5-lnformatlon Technology Multimedia 

f i Strs aming \ tic Foi t 
i ~ ^ ^ -t "t 

visited: 15 Nov 2008. 

(32) Digita! Media Project (DMP). Approved Document No. 
3-Technical Spec ' ;- i ' - c - v *t- ion 
3.0--1003/GA15. http://www. dmpf.org/o pen/dmDt003.zlo. Last visited: 15 Nov 
2008. 

(33) MPEG-21 Rights Expression Language- -ISO/I EC 21000-5 
Amendment 3 : the OAC (Open Access Content) profile, 

(34) MPEG-21 Rights Expression Language- -ISO/I EC 21000-5 
Amendment 2: the DAC (Dissemination And Capture) profile. 



1 l ml i 1 1 1 I i seaich action (11 of 40)3/25/2011 8:44:13 AM 



Dialog C 5 1 i ialogLLi 



(35) TV Any! inns. http://www.tv-anytime.Qra . Last visited: 15 Governed 
content distribution on dht based networks, internet and Web 
Applications and Services, 2008. !C!VV '08. Third international Conference 

on, pages 391-396, June 2008. 
(38) Marco... 



View: HTML j PDF j Word 

□ Q3 2008 "Wave Systems Corporation Earnings Conference Call - Final 

Date: Nov 10, 2008 

3/6, K/3 (Item 3 from file: 15) 
04900384 160:022321 

Q3 2003 Wave Sy stems Corporation Earnings Conference Call •• Final 

Nov 10 2008 
Word Count: 1 5656 
Text: 

...non-GAAP category, an important measure of our financial performance as 
we believe I? nest represents the continued increase in our demand for our 
software license upgrades. Consistent with our revenue 
recognition policies, this outline in the Company's 10-K, as software 
upgrade billings grow we would expect to see... 

were p| ok nat< y 57,896,000 shares and 49,737,000 shares respectively. 
At September 30. 2008, Wave had total assets of $2,985,000 and 
subsequent to the close of the third quarter, Wave completed a 
$721 .500 offering of Series J convertible preferred stock and began to 
Implement a series... 

...example, it works with the Boston subway token actually, the My Fare Card 
which is a contactiess smart card could actually be enrolled as a 
contactless authentication token with your Del! E-Series 
platform. 

So if you fiapper; to traveled through Boston or you're in Boston, you can 
us® one of., wanted a very high performance laptop wanted to be able to buy 
the highest performance drives And now Seagate has made available with 
full disk encryption their highest performance drive products 
for notebooks. 

So really there is now no reason to buy a laptop without a full disk 
encrypting drive. And... 

..reporters who got that connect the dor there not really correct 

SO uVO t o vot , , . 

encryption software that ships nanvely from the factory. One oi 
•he huge advantages that Dell has In the marketplace today is that their 
PC's corns; ..we are seeing continued connection with the enterprises focus 
or; moving towards hardware. Sim a tremendous amount oi this business is 
around the 6a\a encryption side, the encrypted drives. 

Although we're seeing many more customers who are deploying the encrypted 
drives and also deploying some of the features and... 



the subsequent weeks that have aheady slipped We saw so ~-e of 

that In the marketplace, as well, where there were new systems that were 

something called anti- theft technology and that encompasses com the 

ml i i lot rO Search.actiotiii: 14 3/25/201 1 8:44: 13 AM 
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•rusted platlorrrs module and a data encryption capability. 

We demonstrated m August the data encryption capability with a 
."ilv hat v c bury and is now called 

Anti-theft and Danbury provides full disk encryption out from 

on a worldwide basis across ail platform vendors. So if those companies who 
want to take full advantage of the native data encryption 
capabilities of the Intel chip set. Wave has a solution that can provide 
thai and provide seamless capability, same look and feel of software, same 



...And we have also demonstrated support for Toshiba's new full disk 
encrypting drives as well. So as the industry branches out and moves data 
encryption into hardware. Wave intends to provide the software 
to support thai underlying hardware in a very common set of screens, common 
set of capability. reaiiy...ve seen divisions of some of the big health 
Insurance companies - in general as I said before, they are purchasing 
because of the full disk encryption side. 

There Is a mixture, there is a mixture of companies that have never bought 
any data encryption before and this was just a logical way to 
step Into data encryption and it was easy io buy and easy to 
Implement. We ve also had customers who we have worked with for the better 
part ol nine or 12 month who have either got data encryption 
employed, or are in detailed researching it with other software vendors. In 
general, the best customers are the ones who have already had an experience 
with one of the top four or five software fun disk encryption 

equai across the board that the general enterprise.. .push in a pin number 
io complete the long distance call. In essence a password lor every phone 
call you made. 

In the transition to digital cell phones, they put a security 
chip in your phone that basically has the Identity of your phone. And since 
then, the global cellular industry. ..the future is cloud computing and 
we're all going to be logging on to everything we do all the time, then 
what Is the authentication token. What is the standard way that 
we secure our relationships to all oi these services 9 

t » i > :s < ?a-: a ^a . a ^a; : : r; , - o- With t 

violation oi the Mass data encryption law. okay? 

ROBERT LILER. Okay. 

STEVEN SPRAOHJI- So s keeo looking at this and qoing - now that has only 
been a law for four weeks... 

...information, a social security number, a bank account number, you do not 
need any PIN numbers, .us! the person's bank account number. Driver's 
license or any other •• government ID card number. 

Then yon must have the data encrypted So anyone who currently does state 
tax filings would be a. . 

...really should be sold with an encrypted drive. 

And how long -s it gomg to fake everybody to get that message? So let's 

lust play that a lithe bit larger, because that s a very 

simplistic example. ; have to audit my service providers. So my lawyers, my 
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accountants. A DP... 

an yon provide me with a certificate that says 
s tun. entertaining Company in the data 
eel this, and barely anybody knows what 



STEVT-.-.N SPKAGUfc: Sc there Is an education but. . 

...It in a state which is not secure. And so we're oif following that path 
as well. 

But I'm a pretty sophisticated data encryption person to go ask 
this set of questions. So it has been intriguing to watch the impact ... 
for the effect to roll across all the enterprises, big and small. So there 
Is no question that the demand and need lor full disk encryption 
Is absolutely theie. There Is a regulatory requirement tot It. 

You're seeing if move into hardware, i thok Significant events, if your 
looking for a significant event over the course ot the next period of time, 
look for other drive manufacturers adding encryption So it's 
great that we have got Hitachi and Seagate and Toshiba. You want to see 
more. And I think as you continue to.. .couple of different kinds of 
questions I would like to ask you. What protects us from like a hostile 
takeover? It is our intellectual property rights? 

take ••' And ; mean this in the most petite way. Wave is v. company., have so 
much broader reach than we do. So if you look at the Dei: fliers going our 
right now. they talk about the data encryption In the drives. 
And we find that to be a much more effective path. 

T oday about 85% of all oi our new customer contacts come.. .who watched our 
.>,; ;: -i< n ..va'cl—d -tve hours of v:deo. To give you some context on that, 
a vlewe; who watched on the sort of generic streaming Microsoft 
platform watched one hour of video during the length of the Olympics. 

it was an interesting event because it had a very finite number... 



But I think we accomplished the purpose, which was we really demonstrated 
the viability of a download and play capability within the 
Microsoft Media Center. And I think It Is clearly a direction that will add 

...today. We thank you for your participation arid ask that you would 
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.. Oata on your machines c 
It Is encrypted? So being th 
encryption space we've trl 
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Toward semantics-aware management of intellectual property rights 
Abstract: 

The purpose of this paper is to introduce the advantages of semantics-swan; 

representation formalisms in the integration of digital 

rights management (DRM) infrastructures grounded on 

heterogeneous formats. After discussing the notion of semantics-aware IPR 

and its relationship with Semantic Web-style metadata, we exemplify... 
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Papers from the First European Workshop on Technological and Security 
issues in Digital Rights Management (EuDiRight5'06) 
Mariemma Yague 

iace=+Boid: Introductionlace^-Boid: 

The inform u ti mc i ( i ' - i 1 I 1 ! r r 

and most profitable sectors of today's economy. Distributing information in 
digita! form, however, raises numerous concerns due to the fact 
that it is difficult for digita! content providers to 

a itio «vnt oheisT v i - t ^ - " r ~ <~ a i. i ~ 

Internet, which is highly vulnerable to unauthorised use of information. 

Unauthorised distribution, forgery and detacement of digital 

content have become widespread, triggering a technological "arms 

race" between content providers and malicious users. For the 

last 1 0 years the industry has been demanding an efficient mechanism for 

digits! content protection. 

Digita! Rights Mar _ >. r n. - v igies 

supporting secure transmission of digita! products from 

publishers to consumers have become a crucial factor in the marketing of 

digita! content. In general DRfvl systems seek to 

manage access to digitai content, restricting it to 

individuals or organisations that are entitled by payment or affiliation to 

have access. Digita! content managed by DRM can take 

many different forms, including music, information, software applications. 

http://dialogquickseai • 1 '1 i Search.action < 15 f4 25/2011 8:44:13 AM 
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video and even enterprise e-mail. First generation DRM technologies focused 

on encryption- based solutions for locking digits! 

confers! and limiting its distribution to authorised users. Early 

DRM techniques included limiting the number ol devices or; which 

confers! could be accessed or the number of times it could be 

accessed; imposing forward locks to prevent onward transmission of 

confers!, or withholding access until the user had registered 

with the content owner or publisher. Digital 

w I fl I i . ' f I | I i t jl f i t i 

basis for legal action if a violation of rights Is detected. 

Whilt early DRfV ; e s< Hh as unautho e copy g they 

did so at the expense of a substantial limitations to the publishers... 

..even well known examples oi particular solutions that have had rather 
i il n un j ^ t in i to 

security vulnerabilities.) Modern confers! delivery channels are 
more am - 01 -u < ir i r i c^rsf^nf - 

corsfenf aggregators, network owners, service providers, terminal 
m muf oi m r i M 

concerns about fair usage and privacy must be addressed. 

Today, innovative second generation DRM solutions are needed, capable oi 

iiexlbiy supporting new opportunities to do business with 

digsUs! inform i | < i i ' 

largely expected to be due to XML-based Digital 

Rights Management Languages (DRML) that declaratively assign 

usage rights to digital confers! {(21 ) Open 

Digital Rights Language, n.d.; (15) extensible right 

Mark-up Language, n.d.;. DRMLs allow the description oi speciiications of 

rights, fees and usage conditions together with message 

integrity and entity authentication. For instance, in the 

video-on-demand industry there is growing interest in switching from the 

usual download- to-dispiay to a novel download-to... 

...of video applications could be expressed as a DRML policy change. 
However, DRML's expressive power is bound by the metadata specifying 
properties of the digila! content to which they 



In tin s p- j r >a " 

style metadata, highlighting the role of reasoning and Inference... 

...face~-ltalic; (2003), seme basic notions of DRM can be easily captured 

by basic entit i si v ng Current DRM systems involve three 

main entities: Users, Content and Rights. Users 

create and use digital content, i.e. any type of 

digital product. Rights are privileges, constraints 

and obligations regarding content; they are granted or denied to 

users. DRM languages have been designed to state assertions about allowable 

perm si -s, c <: ts 'ligation foe ;v 

-related relationship between users arid content. 

Rights expressions can become very complex, and their correct 

enforcement needs a complete specification of the DRML semantics. 

Nonetheless, a lull formalisation of DRM models Is... 

25 s ■ xi Cup; s. 2GCH) an vi jor > < " A moto i = a 
et ai.face--!talic; , 20(36). Referring to the original 
Gunter/Weeks/Wrights model, rights expressions consist of four 
parts: 

face=+italic: Permissionsiace=-ilal!c; . What a right allows to do. 

face-+ italic; Rights he dersface^- tal c. . Whc is ent tied to 
a right. 
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■ace=+;taiic: Constraintsface* - italic: . Any restriction on the right that 
may apply. 

face=+ltaiic; Gbligationsface=~ltalic: . What... 

...issues CRM- sterr > e sof we known management problems: 

- face--* Italic: Policy managemenfface--itaiio/ An entity should define 
and continuously enforce policies about digital products as part 

of its business strategy. 

- Iace=+italic; Rights management and !ic8nsingf£ce=-!ta!ic; . 
When rights are acquired from other entities, it is important to 
remember the source, how broad the rights are, etc. Also some 
business models require rights to be transferable, i.e. an 
entity can license some rights to other entities. 

to- + lain h< -"mm e-- ! a c t o! business 

m >d< I sot it i t i j vvtx-n I jying a CD), while 

others ger> r i! * t c cl, \f i im , c 'a >e - s the 
rights Practical DRM systems must specify how to collect, 
account and share revenues. 

Summarising, a DRM system is composed of a well-specified 

rights model/language (DRML) and of a set of advanced management 

tools. (01 course, legal aspects are also an important part of the picture, 

and may have ar; important i t I For th \ 

conciseness, however, they are not discussed further in this paper.) 

Rights models and languages must be highly expressive in order 

to satisfy flexibility requirements posed by modern business models; also 

they must be as standardised as possible. In the next sections we introduce 

two XML-based DRMLs. XrML (extensible rights Mark-up Language) 

and ODRL (Open Digital Rights Language), and 

highlight their expressive power limitations. 

iace=+Boid; Limitations oi XML-based DRMface=-Bold; 

As we have seen, evolving business models for digital 
eorstesif introduced novel requirements for DRM systems, in this 
section w< s. i b 

languages r F' I f 
ntb It-ctiJ^I P-operty Rights - \ 

access control (AC) policy languages. DRMLs have many distinguishing 
features. 

A iirst difference is mulimenancy i.e . 

...number of actors involved in each transaction being regulated. 

Traditional AC typically involves two actors: a user requesting a resource, 

arid a service provider requiring authentication in order to 

grant i s> c be involved 

t if i< ii II r r in 1 1 o i i o < i o ' 

participate... 

...service provider (e.g.. the cents act with an Internet provider or mobile 

es at least 

tour actors: the content provider, the distributor delivering 
the content, the clearinghouse managing licences, and the end 
user buying licences. These actors cooperate along the digital 
media value chain according to the specific rights held by each 
party. Orchestrating this process Is therefore more complicated than 
accessing a resource on a secure server. 
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Another crucial i actor in DR-Vl is... 

...motivate the need for a highly expressive DRML supporting a broad choice 
of radically different business models. The specific business model being 
implemented (pay-per-piay, usage metering, dcwnload-to-own) 
dictates the strategies for regulating access to resources; furthermore, 
hardware and software solutions allow for tracking the actual usage oi 
resources and enforce the rights associated with them. 

orthesi i f 1 I l > ;rai > i l 

of resources business processes and actors. Mainstream examples are ODRL 
(Open Digital Rights Language) and XrML (extensible 
right Mark-up Language), the latter forming the basis for MPEG-21 REL. More 
proposals are available, e.g. XMCL ((3... 

...actual transactions, and the latter allows for a more cross-vertical 

apj i al !hty "' r c , 

(e.g., e-books, streaming media, mobile services) and the 

diffeient has / ' / a support by media players introduce specific 

requirements and functionalities. 

In order to show the importance of interoperability between distinct DRMLs. 

H !IEi i Kjl > I ' C IV 

for policy re-use. In Workflow (a) the content provider delivers 
media objects So customers via the internet according to the MPEG-21 
multimedia framework ((6) Bormans and Hill, 2002) therefore relying on the 
XrML format for policy specification. As soon as the same 
eofUiTst ias to be < „ 

using the OMA open standard for DRM ((22) Open Mobile Alliance, 2003), It 
is necessary to translate... 

...enforcement. Rewriting policies is a cumbersome task because media 
objects are supposed to be added continuously; also, this process can be 
automatic, such as in content aggregation, and consequently 
human supervision cannot always be considered in the translation process. 
Instead, in Workflow (b) a translation tool takes care of converting XrML 
...some example 1 - < i < ri r s s h< s The most 

straightforward use of semantics- aware metadata is providing a fine-grained 
description of resources being managed. Digital Asset Management 
(DAM) tools are typically used by content providers (e.g., 
authors) to describe and associate IP rights with their 
pro uofs ' > f "V 

produced by DAM fools comply with a fundamental DRM requirement, namely the 



.. .of ("Si in e e.g. DO 
I me D S>< < ' ^ I 

Advanced descriptions of digital products and of the associated 
rights can drive the brokerage of media products whenever 

;tors make them publicly available, overlaying their own 
rights on the existing IP rights and enforcing them 
-i ' ? l f ' ' ■ oji n\ 'in o- o~ , ' > C--S di 

rights (and formats associated with them) as dynamic properties 
spanning the whole digital product lifecycie. 

This is the approach followed by the Adobe extensible Metadata Platform 
(XMP) ((1) Adobe, n.d.'i, which exemplifies the applicability of Semantic 
Web... 

id' 'i I lii I 1 

applications (Illustrator, Premiere, Acrobat, etc.) to a common 
workflow-integratlng asset and content management, search 
facilities, and control mechanisms on possible secondary uses (e.g. DVD 
duplication). Metadata is stored as XMP packets that label resources; 
within them... 
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...developed Regulatory Ontologieface=+ltalic; sfacs=- Italic: for 
expressing I PR, formalised ODRL semantics using OWL ontologies, and also 

ng Semantic Web techniques to the MPEG-21 Rsghts Data 
Dictionary (ROD) ((12) Deigado face«+italic: et ai.fa.ee— italic; , 2004). 
Also, Deigado pinpointed the need for interoperable workflow descriptions 
and proposed the OWL... our example wo concentrate on this part ol a KB and 
app v '- w -si', r ji i I I ' o I "h 

taxonomy of rights provided by XrML Specifically. XML elements 
associ n I with fin -e e ' > t v t >sse- 1 in the 

TBox. On the othet har ;te the ifenslonal... 

...second case the same translation is applied to the XrML right model, and 
the resulting ontology Is integrated with the one defined for ORDL. 
Equivalent rights in both categorisations car; now be equalised 
<n i | it i 1 1 ! tr > i i 

a'< !• tin d i 

right is totally i ?. rcan i the same efh 

as a duplication operation). Moreover, a "move" operation implies the 
duplication and subsequent deletion of an asset. Both these 
rights should then be granted to principals in order for them to 
perform this operation. 

Considering now the re-use subtree, If is obvious that the.. .relationships 
between "render" and "transport" operations, can fit into a simple tree 
repi st it itii i in t 

XrML rights model with an ontology-based infrastructure. More 
interestingly, XrML and ODRL policies can be made interoperable with each 
other by mapping the two ontologies introduced in this paper. As an 
example, the homonymous play" and "print" operations from both 
formats can be made equivalent. As a consequence, principals with a 
"display" permission in the ODRL expression language can oe given the " 
p!ay" and "print" rights on resources being protected 
by XrMI r eta i igut i i 

the sample mapping of ODRL permissions with XrML rights. 

face-+Bold; Conclusicnsface~-3old; 

Digita! Rights Management languages allow asserted 
rights over digital content to be 

expressed in a machine-readable format. Today, DRM policies are 
increasingly used in conjunction with more general metadata ■ for example, 
harveste I In ' < r r k ci "hat 

rights assertions of today s XML -based policy languages do not 
fully benefit from the highly expressive metadata of Semantic Web style 
descriptions. As a contribution... 
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Figure 4: The categorisation of ODRL permissions 



Figure 5: The OWL ontology derived irom the ODRL permission mode! 
Figure 6: The categorisation of XrML rights 



Figure 7: Integration oi ODRL permissions and XrML rights* 
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TEXT: 

Designers can use the Core8051 8-bit microcontroller core in Actel's 
nonvolatile, single-chip FPQAs. Including ProASIC3, ProASiC Plus, 
Axcelerator, SX... 

...and workstations, and it extends the x86 ISA (Instruction-set 
architecture) across 32- and 64-bit PC. server, and workstation platforms 
with the AMDS'- technology. Subsequent enhancements of the AMD 
Athlon ar;d AMD Opteron processor lines extend 84-bit x86 computing to the 
embedded -system market. The ElanSC5220 x86 controller covers... 

..AMD added the Alchemy Ant 200 processor to the AMD Alchemy line to 
better target levy-power, high-performance PMP f personal-media-player), 
automotive, and DMA (digital-media-adapter) applications. 

* ALTERA 

Altera continues to Improve its Integrated- product portfolio. Hardcopy II 

as well as the 8F566-8M30 eMerf:« Platform, which targets IP set-fop Poxes, 
triple- pSay devices portable and networked media players, and 
automotive -safety/drlver-asslstance systems. 

The ADuC702x precision analog- microcontroller family combines on a single 
chip embedded precision analog junctions and digital 
programming. Featuring ARMV'-based prog; emmao! ty the ADnD IT":< the 
newest addition to the cornea- -vs VlorcCorverfe' seuss-a porr'ol o of 
8052 -based devices. MscrcConve ter products target vgh-prec ■■■ or 
measurement and control and data-acquisition systems with basic 
digital prog nmin e ~- e< son a as. n crceont rollers 
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integrals a 32-bit RISC core and flash memory with precision 
data conversion technology ma; supcc;.? as - v ;k:v as '6 channels d fast. 
12- bit- accurate analog-to -digital conversion and as many as four 
12-bit DACs 

* APPLIED MICRO CIRCUITS CORP 



...Octeon devices include hardware acceleration essential for Level 3 to 
Level 7 applications, which includes packet processing, TCP, muliicore 
scaling, compression/decompression, pattern matching, arid 
encryption. 

The Nitrox Soho Secure Communication Processor family targets wired and 
wireless broadband gateway for the SOHO -small- office, home -office), and 
Sfvlb markets, with performance... 

..LOGIC 

Cirrus Logic's PP92*x ARMB-bas ed encoded processors target applications 
such as point-of-sale terminals, medical Instrumentation, security and 
surveillance, process monitoring, and digital entertainment. 
These processors include WinCE. NET board-support packages and Linux Kernel 
ports with Cirrus Logic's ARM third-party program support. 

MaverickKey technology, which is standard on all Cirrus ARM9-based embedded 
processors except the EPS301 . comprises the IVSaverickKey digital- 
rights -management tool and the MaverickCainch advanced, 
mixed-mode, math coprocessor. MaverickKey technology allows designers to 
assign hardware IDs to protect against design piracy as products... 

...control functions in consume!, industrial, office-automation, telecom, 

and automotive applications. PSOC devices integrate an 8 -bit processor core 

with programmable blocks of analog and digital logic in eight-to 

100-pin devices In DIP SSOP SOIC. ML?, and TGFP packages. All PSOC devices 

are dynamically reconfigurable during runt/me, enabling... 

...consumer electronics, hi IDs (human-interface devices), and home and 
Industrial automation. The CY8C2lx23 and CY8C2lx34 families are Cypress' 
smallest and least costly i-'SOCs with tour digital and four 
analog configurable peripheral blocks. The general-purpose CY8C21>:34 
microcontroller supports capacifive touch- sense applications with no 
external components. These PSOC families target consumer... 
in-system-programmable Hash memory ranging to 64 kbytes. The secure 

encryption techniques that support ATMs, point-of-sale 

The network microcontrollers provide low-cost connections for networking 
applications and include a... 

.. devices use a microcontroller core running at 75 MR?, with an extended 
22-bit addressing range The mixed- signal microcontrollers feature 12 -bit 
analog-to-digital conversion and dual 8-bit PWfvi channels that 
are combinable to 1 6 bits, as well as multiple serial ports and extended 
parallel PC. 

* EM. . 

...enabled household apcii?ncss. These 22-bit - .. • ^controllers incorporate 
networking -security features, onboard ROM and RAM, arid support for IPv6. 
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The :v1B9 >■ ~ : encryption 

supporting the AES (Advanced Data Encryption Standard), DES 
(Data Encryption Standard), and 3 DES (Tnple DES; The 
encryption circuits are 150 to 200 times fasre: man 
soitwa re-based encryption and are complemented by 
authentication circuitry. The series also supports the MD5 

authentication v.n- :oarO:.-. ; .ay cv.o :'-.::--:--y\:- > : ' 'T ■ ?. and 
the IKE (internet Key Exchange) protocol with a hardware engine. 

o -Hi ;s fo . / , n , . . , o a: t. an 

ADC. an op amp, a current source, digital potentiometers, and 
communication interfaces. The Versa microcontroller series of low-cost, 
3- bit. 8051 -based microcontrollers are cost-efficient drop-in replacements 
tor industry-standard .. 

..wireless- access points), VPN (virtual -private-network; equipment, and 
more. 

IDT's RC324S4 Interptiae integrated communications processor, operating as 

fast as 400 MHz targets the digital home network, which 

Includes multimedia applications, such as media servers, media adapters, 

and IP ( I nternet- Protocol }• based network appliances. The integrated 

nonvolatile RAM and an authentication unit for security 

functions enable dsgitai-eonterst-protectlon 

The RC32355 interphse processor integrates a hardware-accelerated IPsec 
(IP-security) engine that Improves the operating frequency by 20%. to... 

...an extended family of network and communications processors targeting 
applications with increasing processing demands created by faster line 
speeds and deeper packet-inspection requirements of content 
-based services, as well as to support multiple protocols and evolving 
industry standards. The IXP460 and IXP465 network processors, the latest 
additions to the IXP4XX... 

...a six-pin, SOT-23 package. The company integrated two low-pin-count PIC 

microcontrollers with the Keeloq cryptographic peripheral targeting 

secure- data-transmission and authentication applications, such 

as battery-clone elimination. The PIC1 6F7S5 makes it easier for 

power-supply designers to use the programmab^Ey of digital 

control m power-conversion applications by Integrating analog building 

a ''ree TCP P race*. ; o. all PiCl 6s 

The dsPIC family or DSCs (digital-signal controllers: features a 
DSP engine with 30-IVHPS nonplpelined performance implemented with a 
C-comp c it. ; controil r o iment. 

The 20 dsPiCSOFXXXX. . 

..new software libraries for the dsPIC. many free or available for a 
one-time fee. 

* MIPS TECHNOLOGIES 
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MIPS Technologies offers processor archlteeto-s-s 3/ id cotes targeting 
digital consumer and business appi cations. '1' vs :. : party licenses 
its 32- and 64 -bit RtSC IP 'intellectual property) !o semiconductor 
companies. ASIC developers and system OEtVis. Core . 

..-electronics and other embedded-system appro?:, ons. The 6-' -op VP Senes 
Ml PS-based microprocessors provide high-performance and scalability 
targeting embedded systems from Internet and digital consumer 

Over the past year. NEC: expanded its 32- and 8-bit microcontroller 
offerings. The company Introduced to the V850 family tne V8S0E2 -vH~3 a 
SS-bit microcontroller for use in inverters, industrial equipment 
printers, and digital consumer products. On the 8-bit side, NEC 
announced the 7SK0/Fx series of microcontrollers for automoiive-body 
applications and the 8 -oil 78K0/Kx2... 

.. QmckMIPS family combines an embedded -processor subsystem and 
programmable logic on a single die. QuickLogic develops intellectual 
prcp-e i and ?cftw 1 e to re get ar. 1 cat c s that distribute 
digital media over Internet Protocol networks, including in-car 
Infotainment, dtgitai signage, overhead cm rotors, and medical 
Imaging. Quick:.. ogio oilers modules, suon as video 
cornpressrori/decornp-ession. encryption 
. and digital 

fights 

management This device architecture provides 
opportunities foi designers to make trade-offs in Implementing system 
functions In hardware for improved performance or in software for... 

...The M18C and ?v132 families target consumer applications, and Renesas' AE 
series chips smart-card platforms have 88 kbytes of EEPROM and a 1024-bit 
encryption coprocessor. 

Renesas introduced three nevv groups of devices in the low-pin-count, 
small-package RSC/Tiny series that suit cost-sensitive applications: these 
16... 

..control applications 
* SILICON STORAGE TECHNOLOGY 

Silicon Storage designs and manufactures various densities of flash-memory 
components, flash mass-storage products and flash microcontrollers 
sgltai 

family of 8-bit, Superflash CMOS microcontroller products implements the 
8061 architecture and instruction... 

hiem-ei rp f Igi- ive p : ; ;y lovv-v.Mt:-;:.-::- cm; low-power reqnp-ernems 
digital consumer/appliances, and networking applications. 

STMicroeleclroniCS oilers 8-. 16-. and 32-bll microcontrollers and 
microprocessors, including a family of ARM7-based microcontrollers, and 
application... 

...platform of ultra-low-power. 16-bit RISC microcontrollers targets 
battery powered measurement applications and enables systems to 
simultaneously interface to analog Signals sensors, and digital 
components. The architecture features power consumption at 0.1 mA for RAM 
retention 0.8 mA during real-lime dock mode, and 250 mA/MIPS... 
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.. density embedded memory with uitralow power consumption. Toshiba 

launched the TX4939X3G-400. its first embedded PC; -o used processor using 

90 mm process teohne;o:;y ? : urge's digital ocvm'-er 

applications. Toshiba rdso mmdsoec rue Tx?96:TC>T3G; operating at 533 or 

666 'vIM?, ittaigets mu t;f jnorloi- pi nte's anc nigh-end set-too-bcx 

applications. 



...execute on Irs strategy to ci'er 'oojsec platioims. Toshiba introduced 
the AVM49R TX System RISC multimedia reference platform for IP (Internet 
Protocol) set top box. digital multimedia appliances, and home 
gateways. 

* TRANSMETA 

Transmeta develops and offers computing technologies that improve 
performance, reduce power consumption and control heat generation in 
electronic devices .. 

...word) engine that can execute as many as eight instructions per clock 
cycle: a 1 -Mbyte 1.2 cache: and suopeit for MMX (multimedia extension). SSE 
(■streaming- single -Instt notion -multiple-data-extension), SSE2, 
and SSE:: instructions 

* UBICOM 

Ublcom offers wireless-network processors that can implement communication 



...turbo mode. 

* VIA TECHNOLOGIES 

via offers power-efficient processors for the >;86 personal-electronics and 
embedded- device markets with a range of feature-rich Via digital 
•media chip sets. Via divides its processors into five product families 
that it bases on power consumption and performance criteria ranging from 
hmievs on- -atiou to 
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dev ii,' , j i ' h i i ' c i isumor to 

high-perfi mance iigh e al ity f d s Aotei wlil deliver the "soft" 
ARM7 family core with a license-free business model. 

Designers can use the Core8051 8-bit microcontroller core in Actei's 
if J A iciuding P oAS!C3, ProASIC Pius, 

Axcelerator, SX... 

...and workstations, and it extends the x86 ISA (instruction-set 
architecture) across 32- and 64-bit PC, server, and workstation platforms 
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with the AM. .. Subs^uent enhancements of the AMD 

Athlon and AMD Opteron processor lines extend 64-b;t xS6 computing to the 
embedded- system market. The E!anSC5220 x86 controller covers... 

...AMD added the Alchemy Au1200 processor to the AMD Alchemy line to better 
target low-power, high-performance PMP (personal-medla-player), automotive, 
and DMA (digital-rnedia-adapter} applications. 
* ALTERA 

Altera continues to improve Its integraled-product portfolio. 
Hardcopy II uses a ; i ■ s t t > Hcell transistors It build? 



...introduced the network-enabled ADSP-BF534, 3F536, and BF537 processors, 
as well i 

triple-play ' '■ '' , an 

autouidiv t, r i v 

1 ■ A i ' < i '.' c i t i - > r r 

sin jif < n![ r log functions and diMst^ 

programming. Featuring ARfv17-based programmability. the ADuC702x is the 
newest addition to the company's MlcroConverter series-s portfolio of 
8052-based devices. MicroConverter products target high-precision 
rn< isi re -en a c l /stems with r. -si 

digital progi a mmi ig r >r 3 1 mi I 

integrate a ill i ' - r c 

data-conversion technology that supports as many as 1 6 channels of fast, 
12-bit-accurate analog-to-digttal conversion and as many as four 
1 2-bit DACs. 

* APPLIED MICRO CIRCUITS CORP 

Since acquiring a portfolio of products associated with IBM's 400 
PowerPC... 

...Octeon devices include hardware acceleration essential for Level 3 to 
Level 7 applications, which includes packet processing. TCP, multicore 
scaling, compression/decompression, pattern matching, and 
encryption. 

fhe Nitrox St 10. mure f < rsmi notion-' cesser . v / argets wired 
and w ' » >n - 
SME matk< a 1 1 c > 
...LOGIC 

Cirrus Logic's EP93xx ARrVi9-based embedded processors target 
< - si mstnjmentation, 
si 1 jtity md sutveiiian oce< :i gitaJ 

entertainment. These processors include WinCE NE'E tea- J 
and Linux kernel ports with Cirrus Logic's ARM third-party program support. 

M vef - /. which is dard on aii Cirrus f RMS-based 

embedded processors except the EP9301 . comprises the MaverickKey 
dsgrtJ sights-management too! and the MaverlckCrunch 
advanced, mixed-mode, math coprocessor. MaverickKey technology allows 
designers to assign hardware IDs to protect against design piracy as 
products... 

..control functions In consumer Industrial, office-automation, telecom, 
and automotive applications. PSOC devices integrate an 8-bit processor core 
with programmable blocks a 1 g and digital logic in eight-to 
100-pin devices in DIP, SSOP SOIC, MLF. and TQFP packages. All PSOC devices 
are dynami tin ?c ifigi ible during jnt/me. enabling 

...consumer electronics, HIDs (human-interface devices), and home and 
industrial automation. The GY8C21x23 and CY8C21x34 families are Cypress' 
smallest and least costly PSOCs with four digita! and four 
analog configurable peripheral blocks. The general-purpose CY8C21x34 
microcontroller supports capacitive touch-sense applications with no 
external components. These PSOC families target consumer... 
in-system-programmabie flash memory ranging to 64 kbytes. The secure 
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microcontrollers target applications demanding protective measures against 
IP (Intel g<J i j " Tt 1 oc 'c -row 

encryption techniques that support ATMs, point-of-sale 
terminals, and data-logging applications. 

The network microcontrollers provide low-cost connections for 
• ng applications and include a,., 

...devices use a microcontroller core running at 75 MHz with an extended 
22-bit adi t N - Ik is featur j 12-bit 

anaiog-to-digitai conversion and dual 8-bit PWM channels that 
are combinable to 16 bits, as well as multiple serial ports and extended 
parallel I/O. 

* Eiys... 

...enabled household appliances These 32-blt microcontrollers Incorporate 
networking-security features, onboard ROM and RAM. and support for IPv6. 
The MB9140x supports IPv6 and includes encryption circuitry 
supporting the AES (Advanced Data Encryption Standard), DES 
(Data Encryption Standard), and 3DES (Triple DES), The 
encryption circuits are 1 50 to 200 times faster than 
software -based encryption and are complemented by- 
authentication circuity hi e a u\ t I <5 
' Si ni I 1 i a m " i 

authentication standards, key exchange methods DH 1/DH 2, and 
the IKE (Internet Key Exchange) protocol with a hardware engine. 
The newest members of Fujitsu's... 

...conditioning, data-acquisition, processing, and control applications. 
Features for these devices include a hardware multiply-accumuiate unit, an 
ADC. an op amp, a current source, digital potentiometers, and 
communication interfaces. The Versa microcontroller series of low-cost, 
8-bit, 8051 -based microcontrollers are cost-efficient drop-in replacements 
for industry-standard... 

...wireless-access points), VPN {virtual-private-network) equipment, and 
more. 

IDT's RC32434 interpnse integrated communications processor, 
operating as fast as 400 MHz. targets the digital home network, 
which it , hoc- m ? i n a- ~x J a coi s " ,0 a 

adapters, and IP (Intemet-Protccol)-based network appliances. The 
integrated nonvolatile RAM arid an authentication unit for 
security functions enable dsgital-content-prctection 
applications and identification storage. 

The RC32365 imerprise processes integrates a hardware-accelerated 
\> -< ;IP s> ut vs ► n u - l i • to 

tn extended fa o - ions proses getin 

applications with increasing processing demands created by faster line 
s[ ui i - - . - f > ) content 

-based services, as weii as to support multiple protocols and evolving 
industry standards. The IXP460 and IXP465 network processors, the latest 
additions to the IXP4XX... 

...a six-pin, SOT-23 package. The company Integrated two low-pin-count PIC 
microcontrollers with the Keeloq cryptographic peripheral targeting 
secure-data-transmission and authentication applications, such 
s batt c 
pow r-suppiy designers t ie progcan ' digital 

i c itn „< s „ 1 j i j 1 1 si k j _ lo i_ 

blocks. 

Microchip brought many high-memory/ high-pin-count, 8-bit PIC18F 
microcontrollers to production. Including... 

...an SPI serial interlace (rather than PC! or ISA). Microchip also otters 
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a iree TCP/IP stack for all PIC18s. 

The dsPiC family of DSCs (digital- signal controiiers) 
features a DSP engine with 30-MiPS nonpipelined performance implemented 
with a C onifn n t I, "lit > 'c t i i ' And design 
environment. The 20 dsPiCSOFXXXX... 

...new software libraries for the dsPIC, many free or available for a 

* MIPS TECHNOLOGIES 

MIPS Technologies offers processor architectures and cores targeting 
digits! consumer and busine r , censes 

its t-v i d j4 r / i i r , r , > r c a i / 
companies. ASIC developers, and system OEMs. Core... 

ie 64-bit VP, Series 
MlPS-based mi provide high -performance and s^caiablilty 
targeting embedded systems from Internet and digital consumer 
devices to servers and switches. 

Over the past year. NEC expanded its 32- and 8-bit microcontroller 
offerings. The company introduced to the V850 family the V850E2/ME3, a 
32-bit microcontroller for use in inverters, industrial equipment, 
printer and digital & p \ n h, - le, NEC 

announced the 78K0/Fx series oi microcontroiiers tor automotive-body 
applications and the 8-bit 78K0/Kx2...QuickMIPS family combines an 
embedded-processor subsystem and programmable logic on a single die. 
QuickLogic develops intellectual property and software to target 
applications that distribute digital media over Internet 
Protocol networks, including in-car infotainment, digital 
signage, overhead projectors, and medical imaging. QuickLogic offers 
modules, such as video compression/decompression, encryption, 
and digital-rights management. This device 
architecture provides opportunities for designers to make trade-offs in 
implementing system functions in hardware for improved performance or in 
software for,.. 

...The M1 8C and M32 families target consumer applications, and Renesas' AE 
series chips smart-card platforms have 68 kbytes of EEPROM and a 1024-bit 
encryption coprocessor. 

Renesas introduced three new groups of devices in the low-pin-count, 
small-package R8C/T'iny series that suit cost-sensitive applications; these 
16... 

...control applications, 

* SILICON STORAGE TECHNOLOGY 

Sil v i a - tge desk - - i l-^i ies of 

It 5 m m ■ >i 

microcontroiiers targeting the digital-consumer, networking, 
wr |i int u 1 i >d 

family of 8-bit, Superflash CMOS microcontroller products implements the 
80! 1 ik iitecti e and i 

ecui rri c target the 

I ii relia i ilgh x'io it o \ t c n< o\ m c rements 
of today's computer peripherals, communication equipment, 
digital consumer/appliances, and networking applications. 
*ST^!CROEi.£CTRGNICS 

STMicroeiectrcnics offers 8-, 16-, and 32-bit microcontrollers and 
microprocessors, inducting a family of AP.fv17-based microcontroiiers. and 
application... 

...platform of ultra-low-power, 15-bit RISC microcontrollers targets 
battery-powered measurement applications and enables systems to 
simultaneously interface to analog signals, sensors, and digital 

i _ c nents "I he architecture features power consumption at 0.1 mA for RAM 
retention, 0.8 mA during real-time-dock mode, and 250 mA/MIPS... 
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.. density embedded memory with uitralow power consumption. Toshiba 
launched the TX4939XBG-400. its first embedded PCI-based processor using 
90 mm process technoiogy: it targets digital- consumer 
applications. Toshiba also introduced the TX9956GX3G operating at 533 or 
666 MHz. it targets multifunction printers and high-end set-top-box 
applications. 
Continuing .. 

..execute on Its strategy to offer focused platforms, Toshiba introduced 
the AVM49R TX System RISC multimedia reference platform for IP (internet 
Protocol) set-top box. digital-multimedia appliances, and home 
Gateways. 

* TRANSMETA 

Transmeta develops and offers computing technologies that improve 
performance reduce power consumption and control heat generation in 
electronic devices... 

...word) engine that can execute as many as eight instructions per clock 
cycle: a 1- Mbyte 1.2 cache: and support for VSMX (multimedia extension), SSE 
(sfreamsng -single- instruction- muitlple-data-extenslon;. SSE2 
and SSE3 instructions. 

* UBICOM 

Ubicom offers wireless-network processors that can implement 
communication and control functions In software, so... 

...turbo mode. 

* VIA TECHNOLOGIES 

Via offers power-efficient processors for the x86 
personal-electronics and embedded-device markets with a range of 
feature-rich Via digital-media chip sets. Via divides its 
processors into five product families that it bases on power consumption 
and performance criteria ranging from fanless operation to... 
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Media security thwarts temptation, permits prosecution. (Industry Trend or Event) 

June 22 . 2000 

Wofd Count: S362 Line Count: 00707 
Text: 

RAMPANT PIRACY OF UNPROTECTED DIGITAL MEDIA HAS 
CONTENT DEVELOPERS AND DISTRIBUTORS SCRAMBLING TO CONSTRAIN, 
REDEFINE. AND EXPLOIT THIS "NEW WORLD ORDER." IN DEVELOPING YOUR 
MEDIA- RECORDING AND -PLAYBACK DEVICES. BEWARE OF CREEPING SECURITY.. 



NUMEROUS LAWSUITS, some of which have already returned verdicts against 
the defendants, attempt to curtail the Uegai distr button of 
copyright- protected digital media, such as electronic books, 
stlh images, aud^o files and video movies Rock band i\/1e;aiiica. and rap 
artist Dr Dre have even taken the unusual step of pursuing leg;;; action not 
only against a software company whose product supposedly promotes such 
content sharing, but also 

students swap flies using the school-supplied computer networks. 
Consortiums such as the Recording Industry Association d Arnehca... 
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...purchase a significant percentage c ! audio CDs a no vantages, have 
enjoyed speedy broadband mie-net accost tor vean; thanks to their 
university account?,. With ADS.. : ^symmetrica -digital 
•subscriber-line) and cable modems now entering homes In a dig way. even 
more traditional music and video consumers can quickly download and stream 
multlmegabyte files. 

Where are these files corning from? 'Today's high-powered PCs can 
achieve bn-acoi.iiate extraction oi CO audio content and compress 
it to one-twelfth {MPS) or even one-twenty -fourth (MS Audio) its original 
size with iitiie-to-no discernible qua«ty loss • Relerence 1 }. Both 
extraction and compression occur several times faster than ordinary 
playback speeds, and digital copies retain much higher quality 
than bootlegs made in the analog past, fvlultigigabyte hard drives are now 
pervasive, as ate fast-writing CD-recordable drives... 

.. onto a CO. Large-screen, high-resolution computer monitors car; eas«y 
display high-deiinltion images portable MP3 and Mini Disc players are 
obsoieting analog taps, and digital speakers and 
high-definition -TV displays are establishing footholds In homes. 

in attempting to stem the iiood of illegal media sharing, the 
content creators and distributors and you. then 

equipment-manufacturer partners, must walk a thin line. On the one hand, 
you're enforcing the valid copyright claims of those who developed the 
material. However, you can't excessively constrain customers who are 
exercising their legal rights to make copies lor their own use 
of media they own and to transfer ownership of that purchased media to 
others. Media-security, or DRM (digital-rights. 

management) systems should bo invisible to honest users {this invisibiity 
is called "eliminating false positives") while acting as strong deterrents 
to pirates. And. to simplify... 

.. attempting to standardise a means o? coping w:th this diversity of 

options via the Commission's OPIMA {Open Platform Initiative for Multimedia 

ideally, the content should be decoupled from its access 
rights, so that If a consume) upgrades or replaces equipment, to 
which trie access rights frequently link, he or she need not 
obsolete an existing media-library collection. If the security system 
benefits only the content creators and distributors, consumers' 
lukewarm response shouldn't be surprising. If., however, security safeguards 
pacify content developers' concerns and therefore enable 
consumers to access a broader and richer set of media than they've been 
able to enjoy in the past... 

..high-fidelity, multichannel surround sound: smaller flies for a given 
quality level; and otherwise -unavailable clips, such as concerts, music 
videos, artd interviews. 

Ultimately, the content developers are free to put 
whatever restrictions they choose on their media. They can prohibit decoded 
audio from passing over a digital connection to speakers or 
digital-video streams from passing to a monitor. They can 
restrict the playback rate over these digital channels to 
prevent high-speed duplication. They can embed "watermarks" -copyright and 

tights -vi o' V oo •'.ct : playback or otherwise 
restrict usage with noncornpllant systems {see sidebar "Back to basics";. 
They can even attempt to retrofit media to prohibit .. 

.. usage, the more complicated the systems become noreasmg the potential 
for end users' frustration. And. because compliance with industry 
consortiums such as the (SDMI) Secure Digital Music Initiative 
is voluntary, not mandatory, the 'its: major content oevelocer 
or distributor that loosens Its restrictions in response to predicted or 
actual consumer confusion, lowers the bat for evetvone. 
ONLY AS STHOKG AS - ^cA-<b.S'f LINK 
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Figure 1 shows one possible digital-media-disuibution 
system of today for technologically savvy users or of the near future for 
everyone else The first point ot digital fried:?: downloading will 
probably be a PC using a cable modem or an ADSL connection. However, it 
could also be a cable, terrestrial or < stei lie digital set-tcc 
box. a media server, an Interne!- enab ed digital a,;d ■:■ or vee r 
player, or even an advanced cellular phone or personal digits! 
assistant. 

•Figure 1 ILLUSTRATION OMITTED) 

Once consumers access a copy of the content they might 
want to stream, copy, or move if to other med:a per pherais the:r home 
or office A variety of distribution mechanisms is possible, including 
Ethernet cable, IEEE 1394. and USB 2.0, home-phone-line networking, 
power-hue- network connections, or oven wireless. And, to play 
the file, why bother With the multiple analog to-digita! and 
digital- to analog conversions, resolution limitations, and noise 
coupling, all of which degrade quality, cf traditional audio and video 
cable? Instead, your customers w;ll probably want to run a pure- 
digitai connection to their speakers over S/PDiF (Sony/PhHips 
Digital interface) or USB and to a display over a DVi { 
Digital Visual Interface). At no point In this process, however, 
can unprotected digital data be "in the cleat" (also called 
"plaintext"; so that people can copy It. 

Regarding downloading versus streaming, the 
content distributors would probably prefer to transmit only a 
temporary, quickly discarded bit stream to each customer, imagine, for 
example, paying a monthly subscription tee to... 

...song from any album in that label's catalog 24 hours a day, seven days a 
week. This scenario maintains maximum distributor control over the 
content, but If doesn't let a user listen to the music on a 
non-lnternet-tethered device. Consumers are also familiar and comfortable 
with going to record stores and purchasing tapes and CDs; the ©-commerce 
anaiogy u: a digital mu:nr: file. So a DrvIX Digital 

but not replace downloading and archiving, though streaming 

within the home, such as from a PC to an audio receiver via a Turtle Beach 

AubioTron or an equivalent, is feasible. 

Streaming-only delivery of video material is a more likely 
-» < i o ephcating t« day s pay-per-view and cable-channel subscriptions 
and partially driven by the... 

..undoubtedly be willing to pay an additional fee for archiving 
capability, m general, you should anticipate some resistance ii you 
provide no ability to record digital broadcasts, give;: mar 
analog- broadcast archiving is possible. And, lust as individuals rent or 
even buy DVDs and video tapes so that they can start, pause, and finish 
viewing the content at their leisure, there'll most likely be a 
demand for similar capabilities In the digital age. 
Digital-video-capture capability at degraded quality levels is 
one possible compromise. 

In differentiating between streaming and 
downloadlng-and-playlng usage models, it's also important to distinguish 
between the ability to view material and the ability to capture or copy it. 
This distinction is Key to resolving the misoonoepiiori regarding the 
Infamous DeCSS (content-scrambling system) utility, which 
circumvented the encryption tor DVDs. Duplication of DVD media 
has always been technically possible, though the high cost o? writable DVDs 
and drives currently makes It econorn cany ;,nreas:c!e. DeCSS simply ets 
you view DVD content as well as defeat rag or coding, it's a so 
Important to note that the developers of DeCSS didn't break the CSS 
algorithm Itself. In... 

...less common thai- cracking ar oienic Sation of that algorithm," says 
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Mark Ashida. president and CEO of media- security -software company and Intel 
spin-off PassEdge. 

Streaming media, in light of Its impeimansrr naure. can 
tolerate a less robust encryption scheme than 
downtoading-and-piaying fried:?:, which is fortunate because the 
near-immediate- response expectations of streaming viewers don't 
allow for complex encryption and decryption cascu atlous. 
f-lowever. the encryption must be distributed throughout the 
media, not just in the file header so that illegal tapping Into the bit 
stream partway through the broadcast Is Impossible. Typically, you want to 
reauthorize the connection using a new key pattern even/ faction c : a 
second to lew seconds. Any evaluation of encryption-algorithm 
alternatives must also consider that the low cost expectations of 
consumer-electronics equipment are at odds with the high processing power, 
memory, and gate. . 

..also encompasses reuewabllity": the ability to defect and block access ov 
a compromised platform, such as a piayer attempting to use a key that the 
content developer has voided. 

Lack of reuewabllity ;s a key limitation of many of today's security 
systems, such as the smart-card -based techniques that... 

.. software programs that can disable Macrovision or otherwise restore the 

original video signal. Also, secure delivery of media to customers is oniy 

half the task. Content distributors would like ...patterns. 

both for planning future products and for targeting consumers for 

advertising on related products. You need to balance these suppliers' 

desires with your customers' rights to privacy. Not everyone 

would tike others fo Know what types of books they read, pictures or movies 

they look at, or music they listen... 

...server of Its own. distributing further media variants. 

To better understand this concept, consider the SDfVII scheme (Figure 
2). SDMI requires that any device storing digital audio contain 
a 32-bit predefined manufacturer ID or 128-bit random number to generate 
security keys. Where does this Identifier come from? One possible... 

...over to your friend's house to listen to them.) However, this approach 
has downsides, too. If the media is lost or irreparably damaged, the 
rights to the media disappear. Media portability also raises the 
specter of illegal duplication, a scenario that can oniy be detected it, 
for example, two people... 

..sensing and amplifying thermal noise patterns across undrlven resistors 
and a secure communication channel links the firmware hub to the I/O hub. 

From an encryption standpoint. SDMI doesn't care which oi 
a multitude oi possible encryption and decryption and 
compression algorithms you choose. As Matt Perry, vice president and 
general manager oi the Embedded Processor Division at Cirrus Logic, 
describes it. the encryption portion of the SMD! protocol is 
only a f unctional specification and. therefore, is open to numerous 
encryption and audio-codec implementations. However. DM"s 
version 1 .0 specification defines a specific watermark technique that 
veranoe developed end DVD Andm also plans to .. 

...access levels. SDMI .(/-compliant devices must search for the Verance 
watermark at least every f 5 seconds. SDMI -compliant hardware wil! carry the 
DMA']" (Digital Music Access Technology; stamp of approve: 

The not-ye; -finalized SDtvk 2.0 sue.;- Noetic dm-ma a minei set c : 
watermarks. They include a 'do- not -Import.. 

...compliant "ripping" (extracting-to-na^d-drlve; oromam ; Reference rv : . 
SDMI f .0-compilam placers mas; search fo: me 2.t--ii-dlcav no ""trigger and 
•hen cannot play SDMI -cornelian: media, .tut!! the use upgrades 
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the player firmware. These additional proposed watermarks may inhibit 
users' abilities play me- tvP-'C llb-ades If Impp - emed 
the heal specif cation •f , e:5a ado: ; or a: sac;.u;y measures will likely 
trigger a consumer uproar like the one that the 'millennium . 

...if the media that stores ire files can interrogate the player and block 
playback if i; detect the pi. sconce o! comoro---isod unit, additional 
access rights become available. This concept is central to the 
definition oi the SD (Secure Digital) card, defined by the 
so-called 3C -three-company; Entity: Matsushita. Sand;sk. and Toshiba. SD 
cads contain a protected media Toy block describing all valid... 

..should also keep media- key block information up to date in the SD-card 

Fig,re c "L.JSTRA TIQN OMI TED; 

50 cams incorporate the CPRM (Content Protection for 
Recordable Media) Protocol, which, along with the CPRM (Content 
Production for Prerecorded Media) Protocol the 4C (four-company) 
Entity- -IBM. Intel, Matsushita, and Toshiba -developed. CPRM and GPPM 
derive from the same CSS encryption scheme that the AC Entity 
developed for DVD video and DVD audio disks. DVD Video's circumvented 
s r i ( /, r- - ^ s,. t« has compelled DVD-audio advocates to 
delay mass production until they can come up with a more robust alternative 
encryption approach. However, the revocation capability of CPRM 
has enabled SD deployment to proceed. 

Current encryption technologies as well as those now under 
development promise to enable high-speed and easy interchange of 
digital media Withm homes and offices. Standards bod^s have- 
yet to endorse an official approach for IEEE 1394, but the emerging de 
facto standard appears to be the Digital Transmission Copy 

i a Ens ryption y TCP-IP 

forms for some time and applies to traditional ".me met as well as to 
HomePNA (Horns Phone Networking Alliance) and HomePlug Poweriirse Appliance 
network connections. Encryption, authentication, and 
'o.i <- y n l i i coth. HorneRF. and IEEE 802.11 

specifications. Both poweriine arid wireless networking techniques must 
comprehend sufficient safeguards to ensure that your neighbors can't 
Illegally access the media. You can also apply the DTCP (Digital 
Transmission Content Protection; Protocol for IEEE 1334 to USB 
Si-ilJPPLlNG THE BITS 

What if your customer wants to connect a set of digital 
-interface speakers to nis or her audio playback device or hook up a 
video-playback unit to a digital flat -panel display or CRT? 
• e: e j.lr,< ust t , ' ;f rc dsqirai 

devices content developers will have muted enthusiasm for the 
concept of audio-playback systems with "live" digital outputs. 

..transition -minimized differential signaling-. DVTs secure va.r ant 
which mtei announced and Silicon Image demonstrated m February at its 
Developer Forum, is HDCP (High-bandwidth Digital Copy 
Protection; (Figure 4). Silicon image Is c.memiy j |- : op ng samples of 
first-generation HDCP-aware DVI Sll 1 68 transmitter and Sit 861 receiver 
chics and slates production of dot to- the th;-d puau.sr o' 2000. 

•Figure 4 ILLUSTRATION OM TTED; 

Like SDMi ior audit: HPS-- supports the concepts of 
authentication to verify that a display device Is licensed to 
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receive prelected content, encryption of the 

transmitted video to prevent "eavesdropping" on the protected 

content, and renewab iity 'o enaoie me revscatlor: 

compromised devices. HDCP's hybrid-biock/siream-ciprier approach encrypts 

data at the transmission end o! each i 85- Gops channel arc mmy/pis it at 

the other side. The approach uses the more robust block cipher during 

authentication. Both the authorized host and display device have 

access to a set of secret keys that the HDCP license 

administrator supplies. The secret keys consist o? an array of 40 56-bit 

secret device keys and a corresponding '10-bit binary key-se action vectc- 

(KSV). The host initiates authentication by sending an 

initiation message containing Its KSV and a 64-bit value. The display 

device responds by sending a response message coma mug its KSV... 

..can calculate a shared value, which, if doth devices nave a valid set of 
keys. Is equal. The devices use this snared value in the 
encryption and decryption or the protected content. 
Authentication has now been established, and ^authentication 
occurs every 2 sec. or each time the connection is lost for any reason. A 
taster. bitwise-exclusive-QR-based stream cipher handles content 
delivery. If the HDCP license administrator discovers that the 
security of a certain display device has been compromised and the secret 
device keys are exposed, the administrator pieces the KSV... 

...list when it receives a valid, newer SRV than that currently held in 
memory. SRfvis can be presented to the host in prerecorded or broadcast 
content, or received from another compliant device with a newer 
SRM. Encryption and decryption logic add approximately 10.000 
logic gates to the transmitter- and receiver-chip designs. 

So much lor media that passes between systems. What about security 

on how "open" the system A propiietan/. uouupgradabio set too box. lor 

...most hard-core hackers, who would think nothing of tapping into a board 
trace or probing a packaged iC's leads to siphon off a digital 
bit stream. 

On the opposite end of the spectrum, however, consider PCs. A number 
of available third-party software packages disable Macro-vision protection 
for DVD movies, enabling dubbing to video recorders through a graphics 
card's video output. High Criteria's Total Recorder software intercepts a 
digital-audio bit stream on the way to the PC's sound card. 
Saonmoox VCR pei terms a similar function for video. And the sound cards in 
some PCs digitally output any audio bit stream routed to them and ignore 
SCfvIS copy-protection bits at their digital inputs. 

The emergence oi digital-TV receivers and decoder Hardware 

lii imV - r : - s ::: ■ sndies the digital-TV 

digital audio information Is eve; exposed 

Future operating-system enhancements, piac ng system-specific 
encryption a; trier core instead of as add-ons. will also help 
boost security while maintaining platform openness. Microsoft spent a let 
of time at April... 

...any use -^-ei °c »*~o ,a oa " ~ a ~ - - s- ^ 

the company comes up with, even though such a step might prohibit access to 

certain content. Third-party hardware and software developers 
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'A':;! also need to add security hooks to their Olivers so that they won't 
lose access i! a certain media type insists on operating only with secure 
programs. 

AT A GLANCE 

* Burgeon- :p digital \v a„~~ v.: _es media combine 

with high-speed internet access, high-performance computers, and cheaper 
and denser storage to create a piracy potential that... 

* When evaluating security algorithms for incorporation within your 
systems, be sure to balance robustness with ease of use and performance. 

' Don't let the eonteni developers - and distributors' fear 
and greed lead you to implement ieafufes that circumvent privacy or 

righto lor their legally obtained media. 

* An : deal security system combines the concepts ol 
authentication encryption, and renewab^fy. 

BACK TO BASICS 

People often use the terms "encryption" and "watermarking" 
Interchangeably in truth, the terms refer to different technologies . 
although both are important aspects of a comprehensive digital- 
sights-management system, and you can sometimes use watermarking 
to implement encryption 

Two main types of encryption exist. Symmetrical, or 
synchronous, encryption uses the same secuuty Key to lock" and 
scramble an outgoing file arid to recover a bit-exact copy of the original 
content at the destination Examples, of symmetrical 
encryption include the now-broken DES {Data 
Encryption Standard): its interim replacement. triple-DES, 

encryption I rimes: : •■oxi-geeem;; on " -~S (Advanced 

Encryption Standard): and RC (Rivest's Cipher). The primary 

advantage of symmetrical encryption is its high speed encoding 

and decoding, which occurs because the algorithms employ relatively simple 

transposition end substitution steps. The Achilles' hee! of the approach... 

...third party. If something Intercepts the bit stream and the unintended 
recipient figures out the key, the media is vulnerable. On the other hand, 
clever encryption can result in the delivery of a 

legitimate-appearing but incorrect piece of media, such as a bogus memo, to 
a recipient using an invalid Key. 

Asymmetric, or asynchronous, encryption employs dual keys 
(Figure A). The sender encrypts the media with the recipient's public key. 
and the recipient decrypts It with his or her private key. Exchange of 
public keys requires no secure channel, ana the recipient can ensure 
authentication of a valid sender. However, the key -generation, 
encryption, and decryption algorithms, commonly based on 
prime-numbei techniques, require multiplication operations that are 
time-consuming and performance-intensive. Asymmetric encryption 
examples include the RSA (Rivest. Shamir, and Adetman) and Difiie-Helman 

Fic- rs A Is.CjTT Ta'RCN CMI~~EO) 

encryption, such as a combination of RSA and DES. are also 

possible. Consider, for example, the approach that HDCP (High-bandwidth 

Digital Copy Protection) takes. Asymmetric encryption 

establishes the initial authorization between host and display, as well as 

the periodic reauthorization, raster symmetric compression handles the 

content transfer. Any performance-critical application can 

incorporate a similar approach OTCP ;f>sg:iai Transmission Copy 

Protection; comprehends 

protocols, it supports symmetric protocols for their supposed lower value, 
siugle-and free-copy material. 

Streaming delivery is the key target of RPK SecureMedla, a 
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New Zealand aherefore not subject to US export restrictions) cryptography 
company lunded by a'-ono others speammy-medla pionee: 
RealNetworks PPK claims thai its prop? e;a-y approach combines the 
benefits cl pubiic/pnvate-key systems sixth as authentication, 
digital signatures ceo * sates arc *ey mana-ge^eo with the 
speed of symmetric systems in one encryption and decryption 
engine. The Eneryptonite Teokit offers a choice of 80 levels oi security 
using 127- to 2281 -bit-long Keys. Detractors pair; to the fact that no one 
knows how robust RPK's proprietary encryption algorithms are, 
because they haven't been subjected to the same intense scrutiny as 
standards based alternatives, such as those from Intel spin-off PassEdge... 
thai, aside from greater initial latency analogous to a FIFO-buffer fill, 

:'-'-esa-'d rev tone: ■ ones no deo'-aca pe-ib tinea " .a come-any Is 

developing hardware- based encryption and decryption aeceiesators 
to supplement its software offerings. 

PassEdge o Stream.Aocess encrypliors algorithms take 
advantage of any hardware-accelerated integer arithmetic toglc within a. 
microprocessor, such as Intel's MlvfX (multimedia-extensions) instruction 
set. The company targeted... 

...may fiave been when you held a piece oi paper up to a strong light and 

saw a faint normally Invisible manufacturer or publisher toco. 

Digital - i > n j , >li % ^e concept to electronic 

media. Watermarking might find use as a means of hiding the secure key in 

symmetrical encryption More commonly, however. 

content distributors use watermarking to encode copyright and 

other media source information, and to document usage regulations. These 

rules Include duration of access, the number of times a user can access the 

media under certain purchase conditions, duplication capability (or lack 

thereof), and geography-based access rights (such as a movie 

thai you can play in the United States but not in Europe). 

internet search "spiders" can then use all of this embedded data to detect 

itteg.til media distribution and... 

..appiicafion-deflnecj greater Ue soo or bit rate;. It also must 
tolerate transmission errors; a watermark can't be voided by dropped 
packets during a streaming transmission or circumvented by 
selective deletion of portions of a picture or sound clip. 

Digimarc is perhaps the best-known image-watermarking company. Photo 
sfeganography... 

.. frame -by -frame watermarking would probably be overkill as well as too 
time-consuming and expensive. 

One common technique available to those wishing to watermark 
digital audio invokes injection of iow-ievei broadband and 
time-independent noise. As with still images, you need to balance 
transparency- -the inability to hear the .. 

...the technology behind the MPEG audio (most notably MPS) and newer AAC 

(advanced audio codec) algorithms, has also spent much time and effort on 

audio encryption arid watermarking. The company's watermarking 

approach is high-performance, which Is important when companies must 

generate Sicense specific versions oi media. The approach also 

can operate on already-compressed audio flies (references B and C). It 

ether slightly increases the bit rate to hold quality constant or 

partially decodes, then more aggressively quantizes and adds watermarking 

bits to. peiceptually Irrelevant frequency bands. 

Fraunholer's encryption technique is equally interesting 
(references D and E). The company encrypts each group of audio samples 
within the ncc 1 p ^ < o i temporal and 

frequency masking, and quant nation and then deserambies colore Inverse 
quantization and filter-bank resynthesls {Figure B). Embedding 
encryption within encoding allows the encryption 
algorithm to select vety place its manipulations : n certain frequency 
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Lvres -is f „ . v. . . e an encrypted file that an 

audio decoder without access to the proper key can still play, 

albeit w:th an adjustable amount ol distortion. Applying mis concept to 

e-commeme means that a customs: could preview entire songs ve-sus today's 

short clips and then purchase a key to enable access to them at their full 

quality. 

(Figure 8 ILLUSTRATION OMITTED) 

'•'or more information on encryption check out references F 
and O. Good Web sites to continue your ...REf-'EREMCES 

(A ) Jajocda SusM and Nell F Johnson. ' Exploring steganography: 
seeing the unseen " IEEE Computer. February 1998. pg 26. 

(8.) Herre, Jurgen. and Christian Neubauer, "Digital 
watermarking and its Influence on audio quality." 1 05th Ando Engineering 
Society Convention. Sept 28 to 29. 1998, San Francisco, CA. 

•C.i Herre. Jurgen, and Christian... 

.. Herre "Secure delivery of compressed audio by compai bie bl! -stream 
scrambling." 108th Audio Engineering Society Convention. Feb 19 to 22, 
2000. Pans. 

(P.; Cravotia. Nicholas. "EncrypHon: mors than just 
complex algorithms:' EDM, March 18, 1999. pg 105. 

(G.) Schneier, Sruce. Applied Cryptography. Protocols. Algorithms and 
Source ('ode In C, Second Edition. ISGN « 0471 1 17099. John Wiley & Sons, 
1935. 

BELATEDLY CLOSING PANDORA'S BOX 

As Hollywood and the consumer-electronics companies drag their feet 
In !:ua!!?inc me Sncuie PsgrKs EDido li-shove 

they ironically exacerbate the copyright-infringement problem by continuing 
to churn out audio CDs without any security whatsoever and DVD videos with 
already-compromised illegal- access safeguards. Efforts under way by a 
number of vendors strive to retrofit digital media with 
encryption and watermarking capabilities, but legal restrictions 
and potential hardware and software incompatibilities limit their success. 
The Copyright Act of 1 976 allows consumers to make as... 

...not allowed, except in academic settings.) The act's 1992 amendment 

(commonly known as the Audio Home Recording Act) somewhat restricted this 

consumer freedom for digital -audio media, prohibiting 

subsequent duplication ol first-generation digital 

copies In conjunction with the Serial Copy Management System (SCMS). 

Production of any system that circumvents SCIvIS is Regal but so too 
is any approach that doesn't allow consumers to make first-generation 
copies of then legally obtained digital music. Some of the 
copy-restricting products now underdevelopment, although perhaps 
acceptable outside the United States, come close to violating or blatantly 
violate consumer rights under the Home Audio Recording Act. And 
this discussion concerns only audio. The Mactovsslon copy protection 
embedded within the analog output of DVD video players, as wen as encoded 
in some video- cassettes and vldeodlsks reflects "he fact that even analog 
duplication ol video content Is Illegal. The 1998 
Digital Millennium Copyright Act. whose legality the US Supreme 
Court has yet to determine, goes one step further in outlawing attempts to 
circumvent any copyright-protection... 

...audio CDs on computer CD-ROM drives According to the nanuiaetu ers. 
dedicated audio-CD piaysrs. because of their greater tolerance of media 
errors, can still play altered audio CDs (Reference A; However 
consumer feedback suggests that reality falls short of this goal. Both 
systems can optionally disable a CD player s digitai output, an 
infringement of consumer rights under the Home Audio Recording 
Act and of the Red Book CD standard. Undeterred, TTR Technologies, whose 
iViUslcQuard technology also blocks duplication of audio content 
on CDs. is working on «*t 'a - ogy to DVDs. 

Dlvx may be dead, but companies are still trying to figure out how to 
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render... 

.. leading restricted -p aybaek proponents o;a:ms ?o have f cured or.: now 
to ensure that, once a consumer opens any optical media's packaging, the 
disk will play only for a content 

-distributor-specified period of time. A touted environmentally irlendly 
chemical that the company applies to the disk is the secret and the last 
step In.. 

..Unlike Dlvx. Spectra Science's approach requires neither an expensive, 
custom DVD player, nor that the player connect via phone line to a server 
lor authentication and. some feared. Big Brother snooping oi 
consume: viewing habits. 
REFERENCES 

•A.) Starr-en Robert A. "Recording at trie speed el sound," eMedia. 
May 2000 oq 28 

SECURING- -AND CIRCUMVENTING-- AT HIGH SPEED 

A key part of the leason that you; chosen encryption 
system should be upgradable, aside fiom the potential for cracking due to 
inadvertent disclosure of keys, Is the ever-increasing performance of 
stand-alone end., with the high performance of a hard- wired ASsG. and the 
logic block structures are Idea: lor Implementing, the types of arithmetic 
functions common In encryption and decryption. At FPGA 2000, 
representatives from the Worcester Polyreonnlo Institute (Worcester. MAi 
used Xilinx XCV 1 000s to Implement the Serpent block cipher (one of the 
Advanced Encryption Standard candidates) at 
encryption rates beyond 4 Gbps (Reference 3). The researchers 
evaluated four design approaches with varying gate counts and speeds. 

The 2.44- to 37.97-M'Hz... 
...Computing Machines (FCCM 2000) (Reference C). Using the company's XCV150 
FPGAs with Java-based dynamic partial-reconfiguration techniques, Xilinx 
engineers achieved 10.7-Gbps encryption performance using the 
DES (Data Encryption Standard) algorithm. 

REFERENCES 

(A.) Kim. Hea Joung. and William H Mangione-Srnith, "Factoring large 
numbers with programmable hardware." ACM/SIGDA International Symposium on 
Fseid Programmable... 

..Serpent block cipher." ACM/SiGDA international Symposium on Field 
t'-rr-gmmrmtble Gate Arrays. Fee '0 to I : 2000. Monterey CA. 

(C.) Patterson. Cameron. "High performance DES encryption 
In v'irtex FPGAs using J Bits " IEEE Symposium on Field-Programmable Custom 
Comouflnc Machines' Aoill 17 to 3 9. 2000. Napa. CA. 

FOR MORE INFORMATION ... 

For more. . 

.. 9416 

www.i394ta.org 

Enter No. 345 

4C Entity 
www.4centity.com 
Enter No. 346 

Bluetooth Special Interest 

wwwJitiyetootbcgm 
Enter No. 347 

Digital Display Working 
Group (DV'l) 
www.ddwg.org 
Enter No. 348 
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Digital Transmission Copy 
Protection Licensing 
Administrator ;5C Entity) 
www.d tc p.ccn-! 



Electronic Frontier 




Networking Aiiiance 
www.h omepna.org 
Enter No. 351 

Aiiiance " 
www.homepiuq.org 
Enter No. 352 

Home Recording 
Rights Coalition 
1 -800-282-8273 
www.iec.ch/opifna 
Enter No. 353 

HomeRF Working Group 
•i -503-291-2563 ' 
www.homerf.orq 
Enter No. 354... 

wm.m£.a,org 
Enter No. 357 




Secure Digitai Association 

www.sdcard.org 

Enter No. 359 

Secure Digitai Music 




www.sdmi.org 
Enter No. 360 



USB Imolementers Foam 

1-503-296-9892 

www.usb.ora 

Enter No. 351 . .of the airwaves: new technologies for audio copy 
protection. " eMedia. September 1999. pg 50. 

(5.) DeCarmo. Linden. "Safety in numbers: a look at the Secure 
Digital Music Initiative," ©Media. November, 1999, pg AS. 

(6.) Lawton, George. "Intellectual prope-ty p- erection cpens path for 
o- commerce." IEEE Computer. February 2000. pg 
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•9 ) Q(umr-o:*-:l :\Ai--« '"'■e 'vUKl;.>c;r; " S:ar«c: :; <~"::;;V7<; So;.;'-;::: 

& Vision. November ;999. pg 1 19 
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